Integrating Identity Management Aspirations and Issues
|
|
- Paulina Mason
- 6 years ago
- Views:
Transcription
1 Integrating Identity Management Aspirations and Issues James Dalziel Professor of Learning Technology, MAMS CI and Director, Macquarie E-Learning Centre Of Excellence (MELCOE) Macquarie University Presentation for Open Repositories 2006, University of Sydney, 2 nd February 2006
2 Overview Aspirations for repositories Where are we today identity and access? What could the future be? Any reason for optimism? Directory/SSO Shibboleth XACML Open Source Software MAMS
3 Some Aspirations Staff and students can share a compound (multi-part) resource (eg, PhD) where some parts are openly available, and some parts require restricted access (Restrictions could be by country, institution, time, role, discipline) A researcher can share a valuable, restricted availability dataset with colleagues at partner institutions and/or discipline peers easily, securely, automated A librarian can manage access policies for protected resources in a single, unified way regardless of the type of resource, repository software, location of resource, etc
4 Some Aspirations IT managers can provide a central, secure identity service which provides Single-Sign-On to all applications and repositories, and application/repository owners don t manage identities, just access policies based on attributes Access to federated search facilities that work across many repositories; including the new problem of authenticated federated search across protected repositories Solve DRM without lock-ins, preserve privacy and maintain openness wherever possible and appropriate
5 Two More Aspirations. Identity and Access Management solutions for institutional repositories should also work for: Dataset repositories Learning Object Repositories Online collaborative Virtual Organisations Grid/High Performance Computing services Campus portals Etc Solutions should work across institutional boundaries (not just within) Therefore open standards are crucial, as the systems will be different
6 Convergence of Higher Education Domains IT Services E-RESEARCH SCHOLARLY INFORMATION E-LEARNING User Interfaces User Interfaces User Interfaces User Interfaces Applications Common services Applications Applications Middleware Common services Common services Applications Common services Infrastructure Infrastructure Infrastructure Infrastructure Enterprise Info DBs Datasets Repositories Knowledge Repositories Learning Object Repositories
7 What is typical today - identity? Well managed central directory of identities is rare, mainly a fairly messy set of identity silos across campus Eg, nine different identity silos just within the library Identity management processes are weak and inconsistent Evidence of identity is uneven, provisioning uneven, lots of security holes (but mainly in low risk contexts, eg e-journals) Repository systems are hard (or impossible) to link to external directories of identities ( hence silos) IP address, not person-based, access to protected content
8 What is typical today - access? Repository software has its own (usually closed) approach to controlling who gets access to what (authorisation) Open source software, while helpful, is not necessarily a solution if a repository s authorisation mechanisms are not cleanly separated Access to protected resources usually requires personally identifying information (typically a name and password) Privacy implications for search; intellectual property disclosure issues (bio) Library-managed protected resources involve a nightmare of access management issues (both contracts and technical) **Many researchers have valuable resources/datasets sitting on their desktops because they don t have a simple method for restricted sharing
9 What could the future be? One central identity store (managed by IT Services) Single-Sign-On across all appropriate applications Able to share (open and) restricted-access resources Easily, automated, preserve privacy where relevant Able to easily manage access policies A new key role of the librarian? Traditional and authenticated federated search No more identity duplication or hard-wired access control!
10 Any reason for optimism? 1. Central Directories/Single-Sign-On 2. Shibboleth 3. XACML 4. Open source software
11 Directory/SSO Examples of one, centralised, well managed directory of identities providing Single-Sign-On now exist in universities Most university IT managers have identity projects on their list of priorities (although rarely at the top yet) **Now is the time to push for these projects to start Many applications are getting better at working with external identities and SSO (if not, question their future value) E-Security concerns are becoming a new driver SAML V2 incorporates SSO
12 Shibboleth (SAML) 101 Open source software based on an open security standard (SAML Security Assertion Markup Language) Allows an identity system (eg, directory) to pass attributes to service system (eg, repository) World-class privacy preservation Core use case: A researcher at University A wants to access a restricted resource in a repository at University B; where the repository needs to know the request comes from a trusted partner institution, but without necessarily identifying the individual Shibboleth is crucial, but not the whole solution (Shibboleth manages and transmits the attributes only)
13 XACML 101 Open standard for policies to control access (XACML extensible Access Control Markup Language) Open source XACML processor available Allows access to repository resources to be controlled by a separate, flexible, easily-edited language Can receive SAML attributes to process yes/no access decisions SAML + XACML provides an alternative solution to DRM IFFFFFFFF.. web based access control is sufficient for now.
14 Open Source Software Open source software has a range of potential benefits Innovation Total cost of ownership Re-use and adaptation of software In the particular case of repositories and access control, open source is useful for two reasons: Access rights associated with resources remain open (no risk of closed rights being used for proprietary software lock-in) Open source allows developers to build access control software modules that are not hard-wired into the rest of the repository Potential for a single access control system and a unified set of access policies, regardless of repository software chosen But requires repository to allow for modular access systems
15 MAMS MAMS (Meta Access Management System) is a 3 year DEST funded project to solve end-to-end identity/access issues Working on Directories/SSO (with IT Managers); Shibboleth (including easy install CD, national testbed federation, ShARPE); Shibbolising repositories; XACML for repositories; authenticated federated search Testbed federation is available (400,000 identities so far) Use easy install CD to join ( for more details) Various workshops and roadshows throughout 2006 Eg, technical workshop on shibbolising services in February The vision described today already works rollout is the key
16 Collated Votes for MAMS Service Prioritisation Number Subject of votes Rank Single Sign-On DRM & Repository Access Federation Policy 76 3 Virtual Organisations 59 4 Attribute management 57 5 Accountability/Audit 47 6 Visiting Academic 45 7 User Preferences 32 8 Messaging 12 9 Calendaring Anonymous Access Presence 9 12 AV conferencing 4 13 Whiteboard 1 14
The AAF - Supporting Greener Collaboration
SPUSC 2008 SOUTH PACIFIC USER SERVICES CONFERENCE The AAF - Supporting Greener Collaboration Stuart Allen MAMS MELCOE Macquarie University sallen@melcoe.mq.edu.au What is the AAF? The Australian Access
More informationTransformational Projects to Remain Globally Competitive. Dr Mary Davies, University Librarian & Director (Information Management)
Transformational Projects to Remain Globally Competitive Dr Mary Davies, University Librarian & Director (Information Management) Overview Global challenge Changing HE context and developments UWA s current
More informationCisco Spark from Telstra. Empower teamwork
Cisco Spark from Telstra Empower teamwork Contents Product summary 03 Benefits 06 Solutions 07 Cisco Spark Business Messaging 07 Spark Advanced Meetings 08 Cisco Spark Hybrid Services 09 Spark Board 10
More informationCisco Spark Hybrid Services from Telstra
Cisco Spark Hybrid Services from Telstra Complete collaboration on one app Find out more make links Contents Product summary 03 Integration with Telstra 05 Features 06 Hybrid Call Service 07 Hybrid Calendar
More informationNew trends in Identity Management
New trends in Identity Management Peter Gietz, DAASI International GmbH peter.gietz@daasi.de Track on Research and Education Networking in South East Europe, Yu Info 2007, Kopaionik, Serbia 14 March 2007
More informationEDINBURGH S TELFORD COLLEGE
Table of Contents Executive Summary 1 Background Information 1 Access Management 2 Methodology 2 Project Experience 4 References 4 Executive Summary This case study describes the experiences at Edinburgh
More informationSURFdrive AN OWNCLOUD SYNC & SHARE SERVICE. TF-storage Rogier Spoor SURFnet 22 SEPT 2014
SURFdrive AN OWNCLOUD SYNC & SHARE SERVICE TF-storage Rogier Spoor SURFnet 22 SEPT 2014 Top 5 reasons to use a personal cloud storage solution 1 2 Users always have access to their documents, regardless
More informationIdentity Management (IdM) is a crosscutting focus area for DHS
DHS & Identity Management Anil John Telephone: (443) 778-0612 Email: anil.john@jhuapl.edu 1 Identity Management (IdM) is a crosscutting focus area for DHS Enabling Homeland Capabilities EHC #1: Cross-Agency
More informationIdentity and capability management and federation
Identity and capability management and federation The need to manage identities - 1 Increment of digital identity complexity Password, dynamic password, one-time password, based on portable secure devices
More informationOffice 365: Fact Sheet
Office 365: Fact Sheet Microsoft Office 365 from 3C Technology Ltd brings together cloud versions of our most trusted communication and collaboration products with the latest version of our desktop suite.
More informationThe Knowledge Enterprise & Digital Libraries. Manuel Jaffrin EMEA Senior Architect Education & Research Sun Microsystems
The Knowledge Enterprise & Digital Libraries Manuel Jaffrin EMEA Senior Architect Education & Research Sun Microsystems Agenda Sun and the Education community Evolution of the traditional campus Trends
More informationElectronic ID at work: issues and perspective
Electronic ID at work: issues and perspective Antonio Lioy < lioy @ polito.it > Politecnico di Torino Dip. Automatica e Informatica Why should I have/use an (e-) ID? to prove my identity to an "authority":
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: Conestoga College Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationCOLUMN. Audience personas for the Macquarie University Library website. Review the website in preparation for a major redesign CASE STUDY (MARCH 2008)
KM COLUMN CASE STUDY (MARCH 2008) Audience personas for the Macquarie University Library website Macquarie University is an innovative university located on a single campus in Sydney, Australia. Macquarie
More informationOman Research & Education Network (OMREN)
Oman Research & Education Network (OMREN) Presented By: Said Al-Mandhari The Research Council Sultanate of Oman said.mandhari@trc.gov.om http://www.trc.gov.om 1 Table of Content OMREN Definition OMREN
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name:_Unversity of Regina Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationCrash course in Azure Active Directory
Crash course in Azure Active Directory Crash course in Azure Active Directory Competing today requires a focus on digital transformation and empowering everyone to be creative and work together securely.
More informationDissecting NIST Digital Identity Guidelines
Dissecting NIST 800-63 Digital Identity Guidelines KEY CONSIDERATIONS FOR SELECTING THE RIGHT MULTIFACTOR AUTHENTICATION Embracing Compliance More and more business is being conducted digitally whether
More informationOneUConn IT Service Delivery Vision
OneUConn IT Service Delivery Vision The University s Academic Vision establishes a foundation and high expectations for excellence in research, teaching, learning, and outreach for all of UConn s campuses.
More informationUniversity of Cincinnati Federated Identity Strategy
University of Cincinnati Federated Identity Strategy Federated identity management (FIM) allows for two or more organizations to link their networks allowing for greater security and access to appropriate
More informationIntroduction of Identity & Access Management Federation. Motonori Nakamura, NII Japan
Introduction of Identity & Access Management Federation Motonori Nakamura, NII Japan } IP networking } The network enables a variety type of attractive applications } Communication E-mail Video conferencing
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert authoritative and accurate identity attributes to resources being accessed, and that Participants
More informationData Management Checklist
Data Management Checklist Managing research data throughout its lifecycle ensures its long-term value and prevents data from falling into digital obsolescence. Proper data management is a key prerequisite
More informationbwsync&share: A cloud solution for academia in the state of Baden-Württemberg
bwsync&share: A cloud solution for academia in the state of Baden-Württemberg Nico Schlitter, Alexander Yasnogor Steinbuch Centre for Computing Karlsruhe Institute of Technology 76128 Karlsruhe Nico.Schlitter@kit.edu
More informationCisco Unified Presence 8.0
Cisco Unified Presence 8.0 Cisco Unified Communications Solutions unify voice, video, data, and mobile applications on fixed and mobile networks, enabling easy collaboration every time from any workspace.
More informationThe challenges of (non-)openness:
The challenges of (non-)openness: Trust and Identity in Research and Education. DEI 2018, Zagreb, April 2018 Ann Harding, SWITCH/GEANT @hardingar Who am I? Why am I here? Medieval History, Computer Science
More informationCisco Jabber IM for iphone
Data Sheet Cisco Jabber IM for iphone Cisco Collaboration Solutions improve team and customer experiences to help organizations encourage innovation and improve decision making while building trust and
More informationLeveraging the InCommon Federation to access the NSF TeraGrid
Leveraging the InCommon Federation to access the NSF TeraGrid Jim Basney Senior Research Scientist National Center for Supercomputing Applications University of Illinois at Urbana-Champaign jbasney@ncsa.uiuc.edu
More informationWhat is peer to peer?
1 1 1 1 1 1 1 1 0 1 0 1 0 1 What is peer to peer? PP in some sense is decentralization moving away from monolithic central hub-spoke model to the decentralized device to device or service to service model.
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert authoritative and accurate identity attributes to resources being accessed, and that Participants
More informationIBM Tivoli Directory Server
Build a powerful, security-rich data foundation for enterprise identity management IBM Tivoli Directory Server Highlights Support hundreds of millions of entries by leveraging advanced reliability and
More informationGoal. TeraGrid. Challenges. Federated Login to TeraGrid
Goal Federated Login to Jim Basney Terry Fleury Von Welch Enable researchers to use the authentication method of their home organization for access to Researchers don t need to use -specific credentials
More informationOrange Liberty-enabled solution for 71 million subscribers. Aude Pichelin Orange Group Standardisation Manager
Orange Liberty-enabled solution for 71 million subscribers Aude Pichelin Orange Group Standardisation Manager Aude.pichelin@orangefrance.com Orange, Orange, 3GSM 3GSM Barcelona, Barcelona, February 15,
More informationLegal Issues in Data Management: A Practical Approach
Legal Issues in Data Management: A Practical Approach Professor Anne Fitzgerald Faculty of Law OAK Law Project Legal Framework for e-research Project Queensland University of Technology (QUT) am.fitzgerald@qut.edu.au
More informationTHE SECURITY LEADER S GUIDE TO SSO
THE SECURITY LEADER S TO SSO When security leaders think of single sign-on (SSO), they usually think of user convenience and experience. But SSO also plays a critical role in delivering security for data
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: University of Guelph Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationPotential for Technology Innovation within the Internet2 Community: A Five-Year View
Potential for Technology Innovation within the Internet2 Community: A Five-Year View Steve Corbató Managing Director, Technology Direction & Development Industry Strategy Council meeting DTW Westin 17
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name Wilfrid Laurier University Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they
More informationResponsible Officer Approved by
Responsible Officer Approved by Chief Information Officer Council Approved and commenced August, 2014 Review by August, 2017 Relevant Legislation, Ordinance, Rule and/or Governance Level Principle ICT
More informationDDS Identity Federation Service
DDS Identity Federation Service Sharing Identity across Organisational Boundaries Executive Overview for UK Government Company Profile Daemon Directory Services Ltd. (DDS) is an application service provider
More informationEnterprise-ready Unified communications platform
Enterprise-ready Unified communications platform Video gallery HD video or high resolution photos of attendees Consistent and familiar clients Immersive experience optimized for touch Single identity
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: CARLETON UNIVERSITY Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationAdaptacyjny dostęp do aplikacji wszędzie i z każdego urządzenia
Adaptacyjny dostęp do aplikacji wszędzie i z każdego urządzenia F5 EMEA Webinar Listopad 2014 Andrzej Kroczek Field Systems Engineer Today s Network and App Access: So Many Variables! LOCATIONS USERS DEVICES
More informationIdentität und Autorisierung als Grundlage für sichere Web-Services. Dr. Hannes P. Lubich IT Security Strategist
Identität und Autorisierung als Grundlage für sichere Web-Services Dr. Hannes P. Lubich IT Security Strategist The Web Services Temptation For every $1 spent on software $3 to $5 is spent on integration
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: British Columbia Institute of Technology Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation
More informationJim Mains Director of Business Strategy and Media Services Media Solutions Group, EMC Corporation
Media Asset Management Databases The Heart of the System and Critical Decisions and Steps for Success Jim Mains Director of Business Strategy and Media Services Media Solutions Group, EMC Corporation Agenda
More informationExtending Services with Federated Identity Management
Extending Services with Federated Identity Management Wes Hubert Information Technology Analyst Overview General Concepts Higher Education Federations eduroam InCommon Federation Infrastructure Trust Agreements
More informationNational R&E Networks: Engines for innovation in research
National R&E Networks: Engines for innovation in research Erik-Jan Bos EGI Technical Forum 2010 Amsterdam, The Netherlands September 15, 2010 Erik-Jan Bos - Chief Technology Officer at Dutch NREN SURFnet
More informationCASE STUDY GLOBAL CONSUMER GOODS MANUFACTURER ACHIEVES SIGNIFICANT SAVINGS AND FLEXIBILITY THE CUSTOMER THE CHALLENGE
CASE STUDY GLOBAL CONSUMER GOODS MANUFACTURER ACHIEVES SIGNIFICANT SAVINGS AND FLEXIBILITY TenFour is a Premier Service Provider for Red Forge Continuous Infrastructure Service (CIS ). This case study
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: McMaster University Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationMiddleware, Ten Years In: Vapority into Reality into Virtuality
Middleware, Ten Years In: Vapority into Reality into Virtuality Dr. Ken Klingenstein, Senior Director, Middleware and Security, Internet2 Technologist, University of Colorado at Boulder Topics Middleware,
More informationIT risks and controls
Università degli Studi di Roma "Tor Vergata" Master of Science in Business Administration Business Auditing Course IT risks and controls October 2018 Agenda I IT GOVERNANCE IT evolution, objectives, roles
More informationSOCIAL IDENTITIES IN HIGHER ED: WHY AND HOW WITH REAL-WORLD EXAMPLES
SOCIAL IDENTITIES IN HIGHER ED: WHY AND HOW WITH REAL-WORLD EXAMPLES Todd Haddaway, University of Maryland, Baltimore County Jacob Farmer, Indiana University Dedra Chamberlin, Cirrus Identity 2015 Internet2
More informationGreek Research and Technology Network. Authentication & Authorization Infrastructure. Faidon Liambotis. grnet
Greek Research and Technology Network Authentication & Authorization Infrastructure Faidon Liambotis faidon@.gr Networking Research and Education February 22 nd, 2011 1 Who am I? Servers & Services Engineer,
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: St. Thomas University Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationUsing GitHub to open up your software project
Using GitHub to open up your software project Patricia Herterich Research Repository Advisor @pherterich p.s.herterich@bham.ac.uk Research software management, sharing and sustainability workshop University
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert authoritative and accurate identity attributes to resources being accessed, and that Participants
More informationBrown University Libraries Technology Plan
Brown University Libraries Technology Plan 2009-2011 Technology Vision Brown University Library creates, develops, promotes, and uses technology to further the Library s mission and strategic directions
More informationDARIAH-AAI. DASISH AAI Meeting. Nijmegen, March 9th,
DARIAH-AAI DASISH AAI Meeting Nijmegen, March 9th, 2014 www.dariah.eu What is DARIAH? DARIAH: Digital Research Infrastructure for the Arts and Humanities One of the few ESFRI research infrastructures for
More informationUsing JSTOR. September 2014
Using JSTOR September 2014 Presentation Agenda 1. What is JSTOR? 2. JSTOR demonstration Searching JSTOR Format of the journal content Using a MyJSTOR account to organize research Linking to content on
More information<Insert Picture Here> Enterprise Data Management using Grid Technology
Enterprise Data using Grid Technology Kriangsak Tiawsirisup Sales Consulting Manager Oracle Corporation (Thailand) 3 Related Data Centre Trends. Service Oriented Architecture Flexibility
More informationSPARC 2 Consultations January-February 2016
SPARC 2 Consultations January-February 2016 1 Outline Introduction to Compute Canada SPARC 2 Consultation Context Capital Deployment Plan Services Plan Access and Allocation Policies (RAC, etc.) Discussion
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert authoritative and accurate identity attributes to resources being accessed, and that Participants
More information1. Federation Participant Information DRAFT
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES [NOTE: This document should be considered a as MIT is still in the process of spinning up its participation in InCommon.] Participation in InCommon
More informationRA21. Resource Access in the 21 st Century
RA21 Resource Access in the 21 st Century Ralph Youngen, Director, Publishing Systems Integration, American Chemical Society Vice chair, STM RA21 Taskforce 2 The Journey from Print to Digital Institution
More information3-Part Guide to Developing a BYOD Strategy
An IT admin s guide to implementation considerations and best practices when developing a BYOD strategy As the consumerization of IT continues to grow, so has the popularity of Bring Your Own Device (BYOD)
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationSAML-Based SSO Solution
About SAML SSO Solution, page 1 SAML-Based SSO Features, page 2 Basic Elements of a SAML SSO Solution, page 2 SAML SSO Web Browsers, page 3 Cisco Unified Communications Applications that Support SAML SSO,
More informationCollaborative Technologies and Enterprise Middleware:
Collaborative Technologies and Enterprise Middleware: A View of the Next Few Years A Day in the Life of Jean Blue Chair: OOPS! After the break, we will have Session 2D: Middleware Authentication (instead
More informationCanadian Access Federation: Trust Assertion Document (TAD)
1. Canadian Access Federation Participant Information 1.1.1. Organization name: DOUGLAS COLLEGE 1.1.2. Information below is accurate as of this date: November 16, 2017 1.2 Identity Management and/or Privacy
More informationHosted Exchange 2013
Our Cloud Services Hosted Exchange 2013 As a business professional you re under pressure to cut costs, streamline your business and become more productive and efficient, whilst making yourself more available
More informationWarm Up to Identity Protocol Soup
Warm Up to Identity Protocol Soup David Waite Principal Technical Architect 1 Topics What is Digital Identity? What are the different technologies? How are they useful? Where is this space going? 2 Digital
More informationMove beyond BYOD to Mobile Workspace with Cisco and Citrix
Move beyond BYOD to Mobile Workspace with Cisco and Citrix Delivering the Complete Mobile Experience Jonathan Gilad Solutions Manager, Enterprise Mobility Cisco Todd Terbeek Sr. Director, Strategic Alliances
More informationHosted Exchange 2013
Our Cloud Services Hosted Exchange 2013 As a business professional you re under pressure to cut costs, streamline your business and become more productive and efficient, whilst making yourself more available
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name:_Gale_Cengage Learning Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationISA 767, Secure Electronic Commerce Xinwen Zhang, George Mason University
Identity Management and Federated ID (Liberty Alliance) ISA 767, Secure Electronic Commerce Xinwen Zhang, xzhang6@gmu.edu George Mason University Identity Identity is the fundamental concept of uniquely
More informationGÉANT Community Programme
GÉANT Community Programme Building the community Klaas Wierenga Chief Community Support Officer GÉANT Information day, Tirana, 5 th April 1 Membership Association = very large community to serve GÉANT
More informationFederated access to Grid resources
Federated access to Grid resources http://tinyurl.com/loubf Keith Hazelton (hazelton@wisc.edu) Internet2 Middleware Architecture Comm. for Ed. APAN, Singapore, 19-July-06 Topics http://tinyurl.com/loubf
More informationDesigning an institutional research data management infrastructure for the life sciences
Designing an institutional research data management infrastructure for the life sciences Paul van Schayck PhD student, data steward Maastricht University Medical Center + p.vanschayck@maastrichtuniversity.nl
More informationthe steps that IS Services should take to ensure that this document is aligned with the SNH s KIMS and SNH s Change Requirement;
Shaping the Future of IS and ICT in SNH: 2014-2019 SNH s IS/ICT Vision We will develop the ICT infrastructure to support the business needs of our customers. Our ICT infrastructure and IS/GIS solutions
More informationBELNET R&E federation Technical policy
BELNET R&E federation Technical policy Version 1.0 Version Date 0.1 11/03/09 First draft for advisory committee 0.2 11/05/09 Added attribute schema; changes after 1st meeting 0.3 01/07/10 Changed metadata
More informationBeSTGRID. TEC IDF Fund. BeSTGRID planning began over 3 years ago. TEC Innovation and Development Fund. $2.5million: Sep 2006 March 2008
BeSTGRID www.bestgrid.org Nick Jones Project Manager, BeSTGRID Centre for Software Innovation, University of Auckland n.jones@auckland.ac.nz Sam Searle e Research Development Coordinator Victoria University
More informationTop Reasons To Audit An IAM Program. Bryan Cook Focal Point Data Risk
Top Reasons To Audit An IAM Program Bryan Cook Focal Point Data Risk Focal Point Data Risk A New Type of Risk Management Firm THE FACTS Born from the merger of three leading security & risk management
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: Acadia University Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationMaking research data repositories visible and discoverable. Robert Ulrich Karlsruhe Institute of Technology
Making research data repositories visible and discoverable Robert Ulrich Karlsruhe Institute of Technology Outline Background Mission Schema, Icons, Quality and Workflow Interface Growth Cooperations Experiences
More informationTHE CUSTOMER SITUATION. The Customer Background
CASE STUDY GLOBAL CONSUMER GOODS MANUFACTURER ACHIEVES SIGNIFICANT SAVINGS AND FLEXIBILITY THE CUSTOMER SITUATION Alliant Technologies is a Premier Service Provider for Red Forge Continuous Infrastructure
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationManagement der Virtuellen Organisation DARIAH im Rahmen von Shibboleth- basierten Föderationen. 58. DFN- Betriebstagung, Berlin, 12.3.
Management der Virtuellen Organisation DARIAH im Rahmen von Shibboleth- basierten Föderationen 58. DFN- Betriebstagung, Berlin, 12.3.2013 Peter Gietz, DAASI International GmbH DARIAH EU VCC 1 e-infrastructure
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: Royal Society of Chemistry Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they
More informationTARGET2-SECURITIES INFORMATION SECURITY REQUIREMENTS
Target2-Securities Project Team TARGET2-SECURITIES INFORMATION SECURITY REQUIREMENTS Reference: T2S-07-0270 Date: 09 October 2007 Version: 0.1 Status: Draft Target2-Securities - User s TABLE OF CONTENTS
More informationIntroduction to Identity Management Systems
Introduction to Identity Management Systems Ajay Daryanani Middleware Engineer, RedIRIS / Red.es Kopaonik, 13th March 2007 1 1 Outline 1. Reasons for IdM 2. IdM Roadmap 3. Definitions 4. Components and
More informationTECHNICAL GUIDE SSO SAML. At 360Learning, we don t make promises about technical solutions, we make commitments.
TECHNICAL GUIDE SSO SAML At 360Learning, we don t make promises about technical solutions, we make commitments. This technical guide is part of our Technical Documentation. 2 360Learning is a Leading European
More informationOpenScape Web Collaboration
OpenScape Web Collaboration The quickest and easiest way to collaborate, share and support online Performance-boosting collaboration and secure support from anywhere Issues raised, ideas shared and decisions
More informationCanadian Access Federation: Trust Assertion Document (TAD)
Participant Name: Okanagan College Canadian Access Federation: Trust Assertion Document (TAD) 1. Purpose A fundamental requirement of Participants in the Canadian Access Federation is that they assert
More informationMoving Digital Identity to the Cloud, a Fundamental Shift in rethinking the enterprise collaborative model.
TEG Progress Update Moving Digital Identity to the Cloud, a Fundamental Shift in rethinking the enterprise collaborative model. Fulup Ar Foll Master Architect Sun Microsystems Fulup@sun.com 1 What is the
More informationArchitecture & Deployment
Architecture & Deployment IBM Connections 5.0 Workshop Author: Paul Godby IBM Ecosystem Development Duration: 30 minutes 2014 IBM Corporation Agenda IBM Connections lications Prerequisite Software Deployment
More informationIntroduction to eduroam
Introduction to eduroam eduroam (education roaming) is the secure, world-wide roaming access service developed for the international research and education community. Poll Brief History eduroam initiative
More informationIAM Project Overview & Milestones
IAM Project Overview & Milestones TABLE OF CONTENTS IAM PROJECT SUCCESS FACTORS 3 PROJECT SCOPE 3 IN SCOPE 3 OUT OF SCOPE 4 IAM NOW VS. FUTURE 5 IAM NOW 5 IAM IN THE FUTURE 7 IAM PROJECT END STATE 8 ACCESS
More informationINCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES
INCOMMON FEDERATION: PARTICIPANT OPERATIONAL PRACTICES Participation in the InCommon Federation ( Federation ) enables a federation participating organization ("Participant") to use Shibboleth identity
More informationResponse to Industry Canada Consultation Developing a Digital Research Infrastructure Strategy
Response to Industry Canada Consultation Developing a Digital Research Infrastructure Strategy September 14, 2015 1 Introduction Thank you for the opportunity to provide input into Industry Canada s consultation
More information